Lucene search
+L

687 matches found

nessus
nessus
added 2026/06/28 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-53272

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - erofs: fix use-after-free on sbi-syncdecompress zerofsdecompresskickoff can race with filesystem unmount, causing a use-after-free on sbi-syncdecompress. When I...

7.8CVSS6.1AI score0.00125EPSS
Exploits0References4
susecve
susecve
added 2026/06/26 2:7 a.m.7 views

SUSE CVE-2026-53272

In the Linux kernel, the following vulnerability has been resolved: erofs: fix use-after-free on sbi-syncdecompress zerofsdecompresskickoff can race with filesystem unmount, causing a use-after-free on sbi-syncdecompress. When I/O completes, zerofsendio calls zerofsdecompresskickoff to queue...

5.8AI score0.00125EPSS
Exploits0References3
redhatcve
redhatcve
added 2026/06/25 6:18 p.m.8 views

CVE-2026-53015

A flaw was found in the Linux kernel's erofs filesystem. On 32-bit platforms, the lcn variable, used for logical cluster numbers, was defined as a 32-bit integer. This could lead to truncation when calculating offsets larger than 4 Gigabytes GiB, potentially causing incorrect data handling within...

5.5CVSS5.8AI score0.00168EPSS
Exploits0References4
nvd
nvd
added 2026/06/25 9:16 a.m.12 views

CVE-2026-53272

In the Linux kernel, the following vulnerability has been resolved: erofs: fix use-after-free on sbi-syncdecompress zerofsdecompresskickoff can race with filesystem unmount, causing a use-after-free on sbi-syncdecompress. When I/O completes, zerofsendio calls zerofsdecompresskickoff to queue...

7.8CVSS0.00125EPSS
Exploits0References4
osv
osv
added 2026/06/25 9:16 a.m.3 views

UBUNTU-CVE-2026-53272

In the Linux kernel, the following vulnerability has been resolved: erofs: fix use-after-free on sbi-syncdecompress zerofsdecompresskickoff can race with filesystem unmount, causing a use-after-free on sbi-syncdecompress. When I/O completes, zerofsendio calls zerofsdecompresskickoff to queue...

7.8CVSS5.7AI score0.00125EPSS
Exploits0References7
cve
cve
added 2026/06/25 8:39 a.m.15 views

CVE-2026-53272

The CVE-2026-53272 issue affects the Linux kernel’s erofs subsystem. A use-after-free on sbi->sync_decompress can occur when z_erofs_endio() queues z_erofs_decompressqueue_work() and, after folios are unlocked, the unmount path completes with sbi freed before sbi->sync_decompress is accesse...

7.8CVSS5.7AI score0.00125EPSS
Exploits0References4Affected Software1
osv
osv
added 2026/06/25 8:39 a.m.3 views

CVE-2026-53272 erofs: fix use-after-free on sbi->sync_decompress

In the Linux kernel, the following vulnerability has been resolved: erofs: fix use-after-free on sbi-syncdecompress zerofsdecompresskickoff can race with filesystem unmount, causing a use-after-free on sbi-syncdecompress. When I/O completes, zerofsendio calls zerofsdecompresskickoff to queue...

7.8CVSS5.8AI score0.00125EPSS
Exploits0References7
debiancve
debiancve
added 2026/06/25 8:39 a.m.6 views

CVE-2026-53272

In the Linux kernel, the following vulnerability has been resolved: erofs: fix use-after-free on sbi-syncdecompress zerofsdecompresskickoff can race with filesystem unmount, causing a use-after-free on sbi-syncdecompress. When I/O completes, zerofsendio calls zerofsdecompresskickoff to queue...

7.8CVSS5.6AI score0.00125EPSS
Exploits0
euvd
euvd
added 2026/06/25 8:39 a.m.8 views

EUVD-2026-39223

In the Linux kernel, the following vulnerability has been resolved: erofs: fix use-after-free on sbi-syncdecompress zerofsdecompresskickoff can race with filesystem unmount, causing a use-after-free on sbi-syncdecompress. When I/O completes, zerofsendio calls zerofsdecompresskickoff to queue...

5.7AI score0.00125EPSS
Exploits0References4
nessus
nessus
added 2026/06/25 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-53015

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - erofs: unify lcn as u64 for 32-bit platforms As sashiko reported 1, lcn was typed as unsigned long or unsigned int sometimes, which is only 32 bits wide on 32-b...

5.5CVSS6.1AI score0.00168EPSS
Exploits0References4
ptsecurity
ptsecurity
added 2026/06/25 12:0 a.m.10 views

PT-2026-52367

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the erofs component. The z erofs decompress kickoff function can race with the filesystem unmount process, leading to a use-after-free on sbi-sync...

7.8CVSS6.1AI score0.00125EPSS
Exploits0References18
euvd
euvd
added 2026/06/24 6:32 p.m.9 views

EUVD-2026-38883

In the Linux kernel, the following vulnerability has been resolved: erofs: unify lcn as u64 for 32-bit platforms As sashiko reported 1, lcn was typed as unsigned long or unsigned int sometimes, which is only 32 bits wide on 32-bit platforms, which causes lcn lclusterbits to be truncated at 4 GiB...

5.7AI score0.00168EPSS
Exploits0References5
nvd
nvd
added 2026/06/24 5:17 p.m.9 views

CVE-2026-53015

In the Linux kernel, the following vulnerability has been resolved: erofs: unify lcn as u64 for 32-bit platforms As sashiko reported 1, lcn was typed as unsigned long or unsigned int sometimes, which is only 32 bits wide on 32-bit platforms, which causes lcn lclusterbits to be truncated at 4 GiB...

5.5CVSS0.00168EPSS
Exploits0References4
cve
cve
added 2026/06/24 4:29 p.m.10 views

CVE-2026-53015

The CVE-2026-53015 issue concerns the Linux kernel‑erofs filesystem where the lcn variable was 32‑bit on 32‑bit platforms, risking truncation when calculating large offsets (lcn <

5.5CVSS5.7AI score0.00168EPSS
Exploits0References4Affected Software1
osv
osv
added 2026/06/24 4:29 p.m.3 views

CVE-2026-53015 erofs: unify lcn as u64 for 32-bit platforms

In the Linux kernel, the following vulnerability has been resolved: erofs: unify lcn as u64 for 32-bit platforms As sashiko reported 1, lcn was typed as unsigned long or unsigned int sometimes, which is only 32 bits wide on 32-bit platforms, which causes lcn lclusterbits to be truncated at 4 GiB...

5.5CVSS5.8AI score0.00168EPSS
Exploits0References7
astralinux
astralinux
added 2026/06/24 3:11 p.m.4 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: erofs: fixed the UAF issue for file-backed mounts with the directio option 9.269940 T3222 Call trace: 9.269948 T3222 ext4filereadIter+0xac/0x108 9.269979 T3222 vfsiocbiterread+0xac/0x198 9.269993 T3222...

7.8CVSS5.9AI score0.00124EPSS
Exploits0References2
astralinux
astralinux
added 2026/06/24 3:11 p.m.9 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: erofs: Proper handling of the end of the filesystem is required for file-backed mounts. I/O requests that extend beyond the end of the filesystem should be set to zero, similar to the behavior of loopback devices. This is what we...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/06/24 12:0 a.m.8 views

PT-2026-51909

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the erofs component where the lcn variable was typed as unsigned long or unsigned int. On 32-bit platforms, this variable is only 32 bits wide, leading to the truncati...

5.9AI score0.00168EPSS
Exploits0References13
osv
osv
added 2026/06/13 12:5 a.m.37 views

RLSA-2026:25191 Critical: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Linux kernel: Use-after-free in bonding driver leads to denial of service CVE-2026-31419 kernel: Linux kernel: Denial of Service in erofs filesystem CVE-2026-31467 kernel: can: raw: fix...

8.8CVSS5.2AI score0.00563EPSS
Exploits0References8
rocky
rocky
added 2026/06/13 12:5 a.m.30 views

kernel security update

An update is available for kernel. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The kernel packages contain the Linux kernel, the core of any Linux operating...

9.8CVSS5.2AI score0.00563EPSS
Exploits0
Rows per page
Query Builder